Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE 15 SP7 MozillaThunderbird Important Memory Safety Patch 2026-1379-1

suse
Calendar Grey April 16, 2026
Dist Suse Esm H88
MozillaThunderbird update resolves critical issues, enhancing software safety and addressing multiple memory flaws.
An update that solves three vulnerabilities can now be installed.

Summary

## This update for MozillaThunderbird fixes the following issues: * Update to 149.0.2 and 140.9.1esr (bsc#1261663). * CVE-2026-5731: Memory safety bugs fixed in Firefox ESR 115.34.1, Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2. * CVE-2026-5732: Incorrect boundary conditions, integer overflow in the Graphics: Text component. * CVE-2026-5734: Memory safety bugs fixed in Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Workstation Extension 15 SP7

Topics%20covered

Topics Covered

security advisory SuSE important memory safety MozillaThunderbird boundary conditions

References

* bsc#1261663

Cross-

* CVE-2026-5731

* CVE-2026-5732

* CVE-2026-5734

CVSS scores:

* CVE-2026-5731 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2026-5731 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2026-5732 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2026-5732 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2026-5734 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

* CVE-2026-5734 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2026-5734 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* SUSE Linux Enterprise Desktop 15 SP7

* SUSE Linux Enterprise Real Time 15 SP7

* SUSE Linux Enterprise Server 15 SP7

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:1379-1
Release Date: 2026-04-16T08:42:00Z
Rating: important

Topics%20covered

Topics Covered

security advisory SuSE important memory safety MozillaThunderbird boundary conditions

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here